CVE-2024-45400 | mlewand ckeditor-plugin-openlink up to 1.0.6 cross site scripting (GHSA-qj47-6x6q-m3c9)

Posted by Angelo Barbosa | Sep 6, 2024 | CVE

A vulnerability was found in mlewand ckeditor-plugin-openlink up to 1.0.6 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-45400. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45400 | mlewand ckeditor-plugin-openlink up to 1.0.6 cross site scripting (GHSA-qj47-6x6q-m3c9)

Related Posts

CVE-2024-36414 | SalesAgility SuiteCRM up to 7.14.3/8.6.0 server-side request forgery (GHSA-wg74-772c-8gr7)

CVE-2024-35702 | Jewel Theme Master Addons for Elementor Plugin up to 2.0.6.0 on WordPress cross site scripting

CVE-2024-44034 | Martin Greenwood WPSPX Plugin up to 1.0.2 on WordPress path traversal

CVE-2024-5742 | GNU nano Filename symlink